Vulnerabilities > Maianscriptworld > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-07 CVE-2021-32172 Missing Authorization vulnerability in Maianscriptworld Maian Cart 3.8
Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.
network
low complexity
maianscriptworld CWE-862
7.5
7.5
2015-01-13 CVE-2014-10004 SQL Injection vulnerability in Maianscriptworld Maian Uploader 4.0
SQL injection vulnerability in admin/data_files/move.php in Maian Uploader 4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
maianscriptworld CWE-89
7.5
7.5
2009-08-26 CVE-2008-7086 Improper Authentication vulnerability in Maianscriptworld Maian Greetings 2.1
Maian Greetings 2.1 allows remote attackers to bypass authentication and gain administrative privileges by setting the mecard_admin_cookie cookie to admin.
network
low complexity
maianscriptworld CWE-287
7.5
7.5
2008-05-14 CVE-2008-2208 SQL Injection vulnerability in Maianscriptworld Maian Greeting 2.1
SQL injection vulnerability in index.php in Maian Greeting 2.1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search action.
network
low complexity
maianscriptworld CWE-89
7.5
7.5
2008-05-14 CVE-2008-2205 SQL Injection vulnerability in Maianscriptworld Maian Music 1.1
SQL injection vulnerability in index.php in Maian Music 1.1 allows remote attackers to execute arbitrary SQL commands via the album parameter in an album action.
network
low complexity
maianscriptworld CWE-89
7.5
7.5
2008-05-14 CVE-2008-2203 SQL Injection vulnerability in Maianscriptworld Maian Search 1.1
SQL injection vulnerability in search.php in Maian Search 1.1 allows remote attackers to execute arbitrary SQL commands via the keywords parameter in a search action.
network
low complexity
maianscriptworld CWE-89
7.5
7.5